Posts Tagged ‘backtrack’

Am I doing it right?

June 14, 2009

Last week, June 9, was the 1 year anniversary of this blog. I thought it’d be fun to post some stats and to see how my numbers compare to other people’s first year stats.

I had a total of 38,247 views this past year. My busiest day had 373 views.

Last month was my busiest month with 5,808 views.

My top referrer comes from a blog comment I left on Hack N Mod.

My most viewed post is “Tutorial: How to Crack WEP on a Mac“.

366 people viewed my blog by searching for “spoonwep”.

922 people went to download BackTrack after reading my tutorial on how to crack WEP.

As you can see from the screenshots of my stats, most of my traffic is related to cracking WEP passwords, polyphasic sleep, pirating software, and abs.

Although having my traffic increase is great, I find making connections with important people in fields that I’m interested in more important.

Anyone care to share their first year stats with me?

~~~~

- Adventures in Polyphasic Sleeping (feed)
- Arrr! Prepare to be boarded. (feed)
- Alpha Nerd (feed)
- Set Free (feed)

Tags:, , , , , , , , , , , ,
Posted in Uncategorized | 3 Comments »

Patient: Forgotten Password

March 27, 2009


cc photo by Mirko Macari

A friend of mine brought me his brother’s laptop. His brother just got home from the hospital after a stroke and couldn’t remember the password. I never tried retrieving a forgotten password before, so I jumped at the opportunity.

The laptop was a Dell Latitude D630 running Windows XP. I used Google to do a little research on Windows XP password recovery, and a method using Ophcrack was popular.

I downloaded the open source Ophcrack live CD from here…
http://ophcrack.sourceforge.net/download.php?type=livecd

I burned the live CD to a disc, and booted the laptop from it. Ophcrack started up, and there was a display error. No text was showing up in the desktop environment.

During startup, there was an option to choose “Ophcrack Graphic VESA mode”. I restarted using that option instead, and everything looked fine this time. The thing that I thought was really cool is that I didn’t have to press anything for Ophcrack to start cracking the Windows XP password. It just started doing it automatically, and after 9 minutes, I had the password for the administrator account. Also, it told me two other limited accounts on there had no passwords.

So, I tried logging in to the Windows XP administrator account using the password Ophcrack gave me, and it worked! Then, I was able to change my friend’s bro’s limited account to an administrator one.

Needless to say, I’ve added Ophcrack to my arsenal of live CD’s which also include SystemRescueCD and BackTrack.

- Alpha Mesh

Tags:, , , , , , , , , , , , ,
Posted in Uncategorized | 1 Comment »

Tutorial: How to Crack WEP on a Mac

December 13, 2008


cc photo by sara b.

UPDATE (01/26/09 @ 8:03 pm):
For Windows instructions, see this comment.

On an earlier post, I mentioned I recently cracked a WEP protected network. There are many tutorials on this topic. Here’s a method that worked for me which doesn’t require you to use the command line.

For this tutorial, I’ll be using a MacBook. It’s a MB062LL/A running Mac OS X 10.5.5 to be exact, but this method should work with any x86 Mac running Leopard with an AirPort card.

Overview

  1. Find Available Wireless Networks
  2. Get Gear
  3. Boot Backtrack
  4. Use kismet
  5. Use SpoonWep

Find Available Wireless Networks

To find available wireless networks…

  1. Click the AirPort Icon
  2. Click each network that has a lock icon next to it
  3. Make note of the networks that require a WEP password

If you don’t see any WEP networks, try moving your computer to a different location for more networks to scan until you find one.

Get Gear

You will need the following…

You can download BackTrack here. I downloaded the CD Image named “bt3-final.iso” and burned it to a CD.

To Burn the BackTrack 3 ISO File…

  1. In Finder, right-click the downloaded “bt3-final.iso” file
  2. Choose “Open With”
  3. Click “Disk Utility”
  4. In Disk Utility, click “bt3-final.iso”
  5. Click the “Burn” icon
  6. Insert a blank CD and wait for it to be recognized
  7. Click “Burn”

You should now have a BackTrack 3 live CD.

The MacBook’s Airport Card that I’m using can’t be used with BackTrack to crack WEP. Instead, I used a USB WiFi adapter. You can find a list of compatible ones here.

I chose the Hawking HWUG1. You can buy one online at Newegg. If you’d rather buy locally, you can pick one up at BestBuy.

Boot BackTrack

  1. Insert BackTrack 3 Live CD
  2. Restart Mac
  3. When you hear the chime, hold down the “c” key until BackTrack starts to automatically boot. It’ll play a sound when it’s done loading.
  4. Connect the USB WiFi Adapter

Use kismet

  1. Click the blue KDE icon on the bottom-left of the screen
  2. Choose “Backtrack” then “Radio Network Analysis” then “80211″ then “All” then click “Kismet”
  3. Select network device (“rausb0″ for the Hawking HWUG1) and click “OK”.
  4. After kismet lists available networks, press the “s” key then the “w” key to group the WEP networks together. You should see the WEP networks you noted earlier.
  5. Navigate to the WEP network you want to crack first and press “enter”. You should now see the network’s details.

Use SpoonWEP

  1. Click the KDE icon again then choose “Backtrack” then “Radio Network Analysis” then “80211″ then “All” then click “SPoonWep”
  2. You should now have both the kismet and SpoonWep windows showing
  3. In SpoonWep, enter the “Victim Mac” by typing the “BSSID” address you see from the kismet window
  4. Click “CHOOSE A CARD”
  5. Click your card (“RAUSB0″ for the Hawking HWUG1)
  6. Check the “Ath” box
  7. Match the “Channel” with the one from the kismet window
  8. Set the “Inj Rate” to “1000″
  9. Click “LAUNCH”
  10. “Currently” should say “Nothing” then “ASSOCIATING” then “ATTACKING then “GATHERING ARP”. After “Captured” reaches “20000 IV S” it should say “Cracking WEP”
  11. Make note of the resulting WEP Key for that particular network
  12. In kismet, press the “q” key to get back to the network list. Repeat the steps for as many WEP protected networks you want.
  13. Disconnect the USB WiFi Adapter
  14. Restart the comptuer

Congratulations, now you can enter the WEP key (without the colons) as the password for the wireless networks.

Some WEP protected networks take less than 5 minutes to crack. If the first WEP network you try takes too long, try moving on to another one.

Please comment if this method worked for you, or if you know an easier way. At a later date, I’ll try to put up a video tutorial.

~~~~

- More of my tutorials (feed)
- Alpha Nerd (feed)

Tags:, , , , , , , , , , , ,
Posted in Uncategorized | 51 Comments »

House Call: WEP Cracking

November 8, 2008

Update on 12/13/08 @ 11:12 am:
Tutorial: How to Crack WEP on a Mac


photo by Phylevn

I was talking with a friend at a party who lost his internet connection recently. His previous connection was a neighbor’s open wifi. Unfortunately, the access point disappeared one day and all the rest were password protected. I mentioned I knew how to crack those. Naturally, he asked if I could crack one for him. I enjoy a challenge and being helpful, so I agreed. I told him to check if there were any WEP protected networks near him when he got home. He emailed me saying there were a few, and I scheduled a time to make the house call.

The first time I learned how to crack WEP was after reading about it on one of my nerd news feeds. Back then, the process involved running several commands from the command line. I decided to do some more homework on WEP cracking before I went to his house. It turns out nowadays it has gotten a lot easier.

So I took my two girls with me on my house call along with a MacBook, a Hawking HWUG1 USB WiFi adapter, and a BackTrack 3 live CD. When we got there, I booted the MacBook from the BackTrack live CD and plugged in the USB Wifi adapter. I started Kismet to scan for a WEP protected access point with the strongest signal. Then I ran SpoonWEP and was able to get the WEP key in under 2 minutes.

My friend and his wife can finally get back on the internet after several weeks of being offline. They recently had a baby, so she stays home and can now get back to searching for a new place to live via the internet.

The rest of the night was filled with catching up, watching Shrek 2, eating Chinese food, and looking through old photo albums. Good times. They also slipped some gas money into my pocket right before we left which was very thoughtful.

I think I’ll put up a short tutorial soon with the exact steps I take to crack WEP.

---

- Alpha Mesh

Tags:, , , , , , , , ,
Posted in Uncategorized | 8 Comments »